Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/34362e3130322e3233322e302f32342d3234203d3e203231383539.roa
File: 34362e3130322e3233322e302f32342d3234203d3e203231383539.roa (raw, json)
Hash identifier: yDRyc1h8O+mXAEgAFoITsNpFI2VU0vygznR0PJDNh0M=
Subject key identifier: D2:31:47:0B:30:C2:F2:3E:1D:45:62:82:1E:4C:05:FE:94:E1:66:41
Certificate issuer: /CN=ed9edb2a15871785fbae38e23c38820dbfa2cca4
Certificate serial: 1891DE87AE4571F57D4D92615B056095FD4988EA
Authority key identifier: ED:9E:DB:2A:15:87:17:85:FB:AE:38:E2:3C:38:82:0D:BF:A2:CC:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7Z7bKhWHF4X7rjjiPDiCDb-izKQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/34362e3130322e3233322e302f32342d3234203d3e203231383539.roa
Signing time: Tue 19 Nov 2024 10:43:28 +0000
ROA not before: Tue 19 Nov 2024 10:38:28 +0000
ROA not after: Tue 18 Nov 2025 10:43:28 +0000
asID: 21859
IP address blocks: 46.102.232.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/ED9EDB2A15871785FBAE38E23C38820DBFA2CCA4.crl
rsync://rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/ED9EDB2A15871785FBAE38E23C38820DBFA2CCA4.mft
rsync://rpki.ripe.net/repository/DEFAULT/7Z7bKhWHF4X7rjjiPDiCDb-izKQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 17:16:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
18:91:de:87:ae:45:71:f5:7d:4d:92:61:5b:05:60:95:fd:49:88:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ed9edb2a15871785fbae38e23c38820dbfa2cca4
Validity
Not Before: Nov 19 10:38:28 2024 GMT
Not After : Nov 18 10:43:28 2025 GMT
Subject: CN=D231470B30C2F23E1D4562821E4C05FE94E16641
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:05:23:68:fd:a9:fa:86:bf:49:54:be:29:3b:
e1:ad:02:1b:0f:e7:a6:7e:3c:da:5b:a6:db:fb:0f:
4c:58:2b:ac:24:c0:47:bb:73:13:8a:64:15:b8:6a:
9e:7a:af:8a:7b:7b:a8:5d:7c:ec:5b:e3:bd:36:e7:
2f:2f:c1:4a:01:38:a5:8c:a4:44:cc:e3:ca:a5:64:
1c:2d:2f:f0:d4:b1:3a:a5:f5:95:dd:e2:32:c5:29:
b9:a4:2f:a2:38:f6:d9:44:ee:d6:53:8d:f6:a6:2f:
81:da:0d:90:69:c2:96:43:14:1e:5c:8f:86:1b:5f:
83:46:17:9b:d3:ae:99:6e:a1:18:af:55:4f:63:20:
e6:12:61:d1:80:9c:4d:bc:9d:2f:43:2e:05:80:d7:
58:ec:6b:f6:aa:2d:f1:74:d6:e0:2c:02:38:05:67:
98:ed:ca:6b:20:98:4a:91:46:de:09:6a:bc:e3:0a:
8d:cd:18:2a:4b:a6:ef:91:26:f4:ef:ba:02:03:fc:
c7:95:6c:fa:10:1f:8c:2a:74:dc:86:3b:89:13:58:
d8:c9:25:92:1b:50:aa:e9:85:8b:8c:a3:fb:53:28:
1b:1b:ea:e2:6a:ba:86:0d:c8:e2:35:d2:11:90:b6:
94:67:1a:58:0e:96:0b:a7:2d:96:09:7e:07:d4:73:
eb:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:31:47:0B:30:C2:F2:3E:1D:45:62:82:1E:4C:05:FE:94:E1:66:41
X509v3 Authority Key Identifier:
keyid:ED:9E:DB:2A:15:87:17:85:FB:AE:38:E2:3C:38:82:0D:BF:A2:CC:A4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/ED9EDB2A15871785FBAE38E23C38820DBFA2CCA4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7Z7bKhWHF4X7rjjiPDiCDb-izKQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/34362e3130322e3233322e302f32342d3234203d3e203231383539.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.102.232.0/24
Signature Algorithm: sha256WithRSAEncryption
84:c8:60:e7:0a:b7:1a:d8:9a:86:52:b2:f1:67:1a:f3:f5:4f:
67:5f:f8:c2:19:77:03:74:10:fb:25:74:25:c4:24:5d:30:7e:
a8:6b:c1:f4:8d:16:2c:26:f7:3a:06:a3:2f:6c:30:08:fb:fb:
05:b4:25:6a:64:32:f3:cb:87:a0:87:02:d4:dd:57:15:b5:55:
8e:18:1d:63:0e:89:1c:41:7b:ae:0f:79:ec:47:9c:0b:f4:25:
2b:38:7c:47:f6:93:73:f3:75:e9:d7:70:e1:dd:ab:94:7f:e0:
70:af:a1:33:e2:5e:58:4f:1e:ce:f9:c0:4e:18:fa:7e:38:a4:
18:ef:60:27:c2:61:6d:21:59:7c:b9:2c:30:60:ad:12:6f:9f:
b3:fd:ff:1a:5f:b6:f2:76:b6:54:b6:83:df:63:49:17:9d:09:
9a:4d:69:19:6c:a9:62:e5:11:d2:84:75:2a:66:4a:a9:e9:53:
13:f5:ff:4c:d7:c1:5a:2f:69:9b:54:e2:fc:71:d2:cc:f7:52:
24:29:7d:5d:ed:2e:d7:72:c3:3d:99:de:d1:8d:cf:63:2f:7d:
cd:f6:33:66:a6:f0:8d:f4:be:60:66:07:2b:22:74:a3:0e:91:
e1:70:bb:c7:cb:2e:9d:1c:3a:5c:1f:70:e4:f5:68:d7:59:1d:
35:dc:32:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 21:14:52 2024 by rpki-client on console-fra.rpki-client.org